Towards Building a Forensics Aware Language for Secure Logging
Computer Science and Information Systems, Tome 11 (2014) no. 4
Cet article a éte moissonné depuis la source Computer Science and Information Systems website
Trustworthy system logs and application logs are crucial for digital forensics. Researchers have proposed different security mechanisms to ensure the integrity and confidentiality of logs. However, applying current secure logging schemes on heterogeneous formats of logs is tedious. Here, we propose Forensics Aware Language (FAL), a domain-specific language (DSL) through which we can apply a secure logging mechanism on any format of logs. Using FAL, we can define log structure, which represents the format of logs and ensures the security properties of a chosen secure logging scheme. This log structure can later be used by FAL to serve two purposes: it can be used to store system logs securely and it will help application developers for secure application logging by generating the required source code.
Keywords:
DSL, Secure Logging, Audit Trail, Digital Forensics
@article{CSIS_2014_11_4_a6,
author = {Shams Zawoad and Marjan Mernik and Ragib Hasan},
title = {Towards {Building} a {Forensics} {Aware} {Language} for {Secure} {Logging}},
journal = {Computer Science and Information Systems},
year = {2014},
volume = {11},
number = {4},
url = {http://geodesic.mathdoc.fr/item/CSIS_2014_11_4_a6/}
}
Shams Zawoad; Marjan Mernik; Ragib Hasan. Towards Building a Forensics Aware Language for Secure Logging. Computer Science and Information Systems, Tome 11 (2014) no. 4. http://geodesic.mathdoc.fr/item/CSIS_2014_11_4_a6/